question

MohdHaider-9584 avatar image
0 Votes"
MohdHaider-9584 asked ·

Setup Microsoft Azure SAML 2.0 into iOS application

I am trying to configure single sign-on feature of SAML 2.0 in my iOS application. I have successfully configured Auth2.0 using MSAL iOS SDK.
Link: https://cocoapods.org/pods/MSAL

I have also looked into docs also. LinkL: https://docs.microsoft.com/en-us/azure/active-directory/develop/single-sign-on-saml-protocol

But I am unable to figure out way to integrate SAML 2.0 by MSAL iOS sdk.

I am not sure whether MSAL iOS SDK provide support for SAML 2.0 integration or not.

In BASIC SAML Configuration section, I need to provide "identifier" and "Reply URL".

4651-screenshot-2020-03-17-at-124244-pm.png

I am not sure, what I need to provide in these options. Currently in attached picture, I have used dummy url for now.

Pardon me for my poor grammar.

Does anyone know how to setup SAML 2.0 in iOS application?



azure-active-directory
screenshot-2020-03-17-at-124244-pm.png (290.2 KiB)
10 |1000 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

amanpreetsingh-msft avatar image
0 Votes"
amanpreetsingh-msft answered ·

MSAL doesn't support SAML. The authentication flows provided by Microsoft Authentication Library (MSAL) are documented here: https://docs.microsoft.com/en-us/azure/active-directory/develop/msal-authentication-flows.

  • Identifier (Entity ID) : Here you need to specify the issuer of the SAML request. If you check the SAML request, you will find Issuer parameter with a URL. You need to specify that exact URL as Identifier (Entity ID) under Single Sign-On blade of your enterprise application.

  • Reply URL (Assertion Consumer Service URL): This is the URL where the SAML token will be posted after successful authentication. It should match with the Assertion Consumer Service URL in your SAML request.

You may refer to the sample SAML IOS app, if that helps.

Please "Accept as answer" wherever the information provided helps you to help others in the community.

· 1 ·
10 |1000 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

MohdHaider-9584 avatar image MohdHaider-9584 ·

Thanks Aman. This is really helpful and clear my confusion. MSAL is supporting Auth2.0 and OpenId protocol for now.

So for SAML, I need to use WKWebView for loading request.

This Stack Overflow link give me some more help to understand possible implementation in iOS:

https://stackoverflow.com/questions/49507670/saml-for-native-mobile-appsandroid-and-ios

Thanks again for your prompt feedback.

0 Votes 0 ·